Setting user directory information

Use the page Global Settings > General > User Directory to configure directory communication for administrators using their network accounts. The same directory must be used to authenticate all administrative users.

A user directory stores information about a network’s users and resources.
To allow administrators to use their network accounts to log on to the Security Manager, configure the Security Manager to retrieve information from a user directory.
Note: User directory configuration for administrators is performed separately from directory service configuration for end users. Set up end user directory service configuration within each Security Manager module.

The Security Manager can communicate with the following Lightweight Directory Access Protocol (LDAP) directories:

Windows Active Directory (Native Mode)
Generic Directory
Lotus Notes/Domino
Microsoft Entra ID
Novell eDirectory
Oracle Directory Service

It can also communicate with other generic LDAP-based directories.

Duplicate user names are not supported in an LDAP-based directory service. Ensure that the same user name does not appear in multiple domains.
With Windows Active Directory or Oracle Directory Service, user names with blank passwords are not supported. Make sure that all users have passwords assigned.

Note: For the network accounts using Microsoft Entra ID, two-factor authentication and password authentication are not supported. You must enable Single Sign-On under Global Settings > General > Single Sign-On. Before enabling Single Sign-On, make sure there is a local account as a Global Security Administrator in the system that can use password authentication as a fallback method.